Tech Mahindra Ltd logo
App Security

Tech Mahindra Ltd

Job Type

Full-time

Work Type

On-Site

Location

Doha, Qatar

Experience

5 - 10 years

Roles and Responsibilities:

Hands-on Experience is performing Network Security Assessment and vulnerability Assessment. (Web / Android /iOS)

• Conduct Penetration Testing, secure coding, secure coding review, application Security Assessments and application design review.

• Conduct and compile findings on new vulnerabilities.

• Conduct scans and tests to find vulnerabilities in IoT devices.

• Perform IoT penetration tests on various types of applications, networks, systems, and infrastructure.

• Good understanding of OWASP top 10 and web Application security audits.

Manual Penetration Testing skills and techniques are required besides automated tools and frameworks.

• Mobile application security assessment. (iOS / Android)

• Good understanding Mobile application OWASP Top 10.

• Create project deliverables / reports and assist the immediate supervisor during submissions.

• Analyzing bugs in code and mitigate run time damage in Production.

• Communicating with the concerned team for better explanations of security issues and preparing Security testing reports for the security observations.

• Conducting Security Audit to minimize IT security Risk.

• Preparing reports, reviewing supported documentation

• Validated Data and analysis with the external audit

• Validating the manual testing reports on quarterly basis with external audit for application related security

Candidate must be able to:

• Proven experience in securing application.

• Technical domain knowledge - deep understanding and knowledge of the application security technical domain including Threat Modelling, Security by Design, Secure Coding and Software Assurance.

• Familiarity with common security libraries, controls, and common security flaws

• Architecture and design knowledge.

• Ideally five or more years' experience in programming, with three or more years' experience in application security engineering.